Fortinet criticized for ‘silent’ patching after disclosing second zero-day vulnerability in same equipment
Only days after Fortinet was criticized by researchers for ‘silently’ patching a zero-day vulnerability without informing […]
API-Exploit für AI-Browser Comet entdeckt
Sicherheitsforscher haben einen API-Exploit für den KI-Browser Comet offengelegt. Fajri Mulia Hidayat – shutterstock.com Der Security-Anbieter […]
3 ways CISOs can win over their boards this budget season
As the year comes to a close, CISOs are already deep into building next year’s cybersecurity […]
China‑linked PlushDaemon hijacks DNS via ‘EdgeStepper’ to weaponize software updates
PlushDaemon, a China-linked APT group, has been deploying a previously undocumented network implant dubbed EdgeStepper to […]
Selling to the CISO: An open letter to the cybersecurity industry
The cybersecurity market has lost its mind. It seems like every week a new vendor appears, […]
Der große KI-Risiko-Guide
KI-Risiken zu bewerten und zu quantifizieren, ist in der GenAI-Ära unerlässlich. Lerbank-bbk22 | shutterstock.com Wie jede […]
Attack Surface Management – ein Kaufratgeber
Mit diesen Attack Surface Management Tools sorgen Sie im Idealfall dafür, dass sich Angreifer gar nicht […]
Iranian APT hacks helped direct missile strikes in Israel and the Red Sea
Cyber-related activities of two Iran-linked threat actors played key roles in subsequent high-profile missile strikes, according […]
WhatsApp flaw allowed discovery of the 3.5 billion mobile numbers registered to the platform
Researchers have uncovered a WhatsApp privacy flaw that allowed them to discover the 3.5 billion mobile […]
The nexus of risk and intelligence: How vulnerability-informed hunting uncovers what everything else misses
For years, I watched organizations treat vulnerability data like a compliance chore. It was something to […]